Data Privacy

Respecting data privacy rights is a critical component of a successful email program. Our Data Privacy API makes it easy for you you to fulfill GDPR right to be forgotten and CCPA opt out sale requests made by your recipients.

The Data Privacy API lets you automate data privacy requests. Make sure your API key has the permission Data Privacy Read/Write. You can create a new key or update a current key from the API Key page(EU).

Just like in the app, you can submit a single recipient or up to 1000 recipients per API call.

Requests are applied only to the master account by default. To apply the request to the master and all subaccounts, set include_subaccounts=true. To apply the request to a specific subaccount, include the subaccount in the x-msys-subaccount header. Learn more about subaccounts here.

Subaccounts may submit data privacy requests directly to SparkPost via API but not through the SparkPost app. The master account will need to create an API key for the subaccount with the Data Privacy: Read/Write permission.

Requests submitted by a subaccount will always only apply to that specific subaccount.